web analytics

Cybersecurity or Cyber Resilience: Which Matters More? – Source: www.cyberdefensemagazine.com

cybersecurity-or-cyber-resilience:-which-matters-more?-–-source:-wwwcyberdefensemagazine.com
Rate this post

Source: www.cyberdefensemagazine.com – Author: News team

Planning Beyond an Enterprise Security Posture and Toward Reliable Business Continuity

By Amanda Satterwhite, Managing Director of Cyber Growth & Strategy, Accenture Federal Services

Cybercrimes in the United States have resulted in hundreds of billions of dollars in losses. The threats are expanding exponentially endangering our national and economic security.

With off-the-shelf malware readily available, minimal expense and effort is needed for nation-state actors and cyber criminals to disrupt governmental operations for financial and political gain. The rise of AI-based attack vectors has only complicated federal agencies’ efforts to safeguard critical systems.

In this ever-challenging ‘new normal’, the federal government needs more than cybersecurity. Cyber resilience is now also essential. What’s more, of the two, resilience may ultimately prove more important.

Cyber resilience ensures that an enterprise can not only adapt to and recover from known threats and vulnerabilities, but can also anticipate, withstand, and recover from an evolving array of threats, attacks, and vulnerabilities borne out of emerging technologies.

Why Cyber Resilience Matters

A cyber resilience mindset recognizes that no cybersecurity solution is perfect — that even the best cybersecurity tools and strategies cannot protect against every form of cyber threat. For every new defensive strategy, a new attack vector emerges. CISOs and their teams can (and must) engage in what amounts to an endless game of whack-a-mole. You can’t win outright, but neither can you afford to lose.

Recognizing these limitations, cyber resilience strategies deliver robust mitigation plans in the face of these ever-evolving threats. They focus on supporting the continuity of operations, as well as the ability to “return to normal” following an attack.

As federal agencies pursue their modernization goals, a proactive emphasis on cyber resilience ensures they can evolve their defenses as new technologies emerge. Resilience recognizes that there will be new attack vectors as technology evolves, and that incident response and remediation capabilities can and must be able to adapt.

To create a powerful cyber resilience strategy, CISOs and their teams need to develop a risk-based strategy, one that is integrated with the organization’s cybersecurity plans and that supports the ability to identify, protect, detect, respond, and recover. This includes developing detailed incident response, business continuity, and disaster recovery sub-plans and processes.

Why Cyber Resilience Complements Cybersecurity

Cyber resilience should be used in conjunction with fundamental cybersecurity practices.

A strong cybersecurity program deploys the right mix of policies and tools to protect organizations from data breaches, exploited vulnerabilities, malware attacks, and insider threats, as well as phishing attacks that could escalate into ransomware attacks. These will likely include intrusion detection systems, threat monitoring and log collection platforms, end point detection, SIEMs, firewalls, and data loss prevention.

Cyber resilience complements these strategies. With attack simulations, adaptive detection and response, crisis response, and threat intelligence, resilience tools and strategies enable organizations to recover swiftly from a cyberattack. They empower agencies to restore data and systems to their previous state, minimizing the impact of an attack on business operations.

For those already familiar with cyber resilience, there’s a common misconception that cybersecurity planning and cyber resilience planning are mutually exclusive. In fact, they are two sides of the same coin. Cyber plans should look to apply both security measures and cyber resilience for the most effective overall security posture.

Some may erroneously believe that traditional backup solutions are all that’s needed to ensure mission resilience. In fact, while these solutions might be adequate for restoring data in the event of hardware failure or accidental deletion, they’re not designed to ensure full recovery from cyberattacks.

For federal agencies to truly ensure mission success in the face of near constant threats, cyber resilience, or a comprehensive approach to restoring and maintaining operations following a cyberattack, is critical.

Why Cyber Resilience Aligns with Zero Trust

Federal agencies are leaning hard toward adopting Zero Trust security architectures under mandate to do so from the President’s 2021 Executive Order on Improving the Nation’s Cybersecurity, as well as other guidance. They also need to do so, as Zero Trust is proving a robust means of keeping cyber-attackers at bay.

When it comes to cyber resilience, adopting a Zero Trust mentality and architecture is an excellent place to start. Zero Trust assumes that access and networking within an organization can never be trusted. It calls for users, devices, and systems to be authenticated first before connecting, and then re-verified at multiple points before accessing networks, systems, and data.

For those transitioning to a Zero Trust architecture, CISA’s Zero Trust Maturity Model offers a framework of five foundational pillars covering: Identity (and access), Devices (e.g., Bring Your Own Device policies), Networks, Applications, and Data. It then builds in Governance and Analytics, to help measure, monitor, and develop automations to assist with fatigue and mistakes that result from manual updates.

This level of cybersecurity in turn gives a firm grounding to cyber resilience, by preventing many of the most common attacks before they can infiltrate or impact critical data and systems. Again: cyber security and cyber resilience go hand in hand.

As the federal government pursues Zero Trust goals, it should view this effort as a foundation for an expanded view of what security entails. Zero Trust is the bedrock upon which to move beyond mere defense and to layer in cyber resilience so agencies can meet the main objective of security: operational continuity.

Like cybersecurity, cyber resilience is a means to an end. Both look to safeguard critical data and systems, but cyber resilience takes it one step further. Recognizing that even the best defenses can be breached, cyber resilience looks to ensure that agencies can continue to meet the needs of citizens and stakeholders, uphold national security, and accomplish the myriad other vital tasks of government, regardless of what the bad actors may try next.

About the Author

Cybersecurity or Cyber Resilience: Which Matters More?Amanda Satterwhite, Managing Director of Cyber Growth & Strategy at Accenture Federal Services, is responsible for growth, innovation, and go-to-market strategy. Satterwhite leads cyber mission and enablement for the company’s National Security Portfolio, managing a team responsible for creating cutting-edge solutions for national security missions.

Amanda can be reached online at https://www.linkedin.com/in/mandysatterwhite and via the company website https://www.accenture.com/us-en/industries/afs-index

Original Post URL: https://www.cyberdefensemagazine.com/cybersecurity-or-cyber-resilience-which-matters-more/

Category & Tags: Cyber Security News – Cyber Security News

Views: 0

LinkedIn
Twitter
Facebook
WhatsApp
Email

advisor pick´S post

Nathalie Cole
How Much 10 Companies Paid Their Virtual CISO Service in 2022 Benchmark by Nathaniel Cole
How Much 10 Companies Paid...
Tushar Subhra Dutta
Top 10 Cyber Attack Maps to See Digital Threats 2022 by Tushar Subhra Dutta – Cyber Security News.
Top 10 Cyber Attack Maps...
Microsoft
Microsoft Zero Trust Maturity Model
Microsoft Zero Trust Maturity Model
US Deparment of Defense
DevSecOps Fundamentals Guidebook – Tools & Activities by American Deparment of Defense
DevSecOps Fundamentals Guidebook – Tools...
Microsoft
Microsoft 365 and the NIST Cybersecurity Framework
Microsoft 365 and the NIST...
ACSC Australia
Cyber Incident Response Plan Template by ACSC & Australian Goverment
Cyber Incident Response Plan Template...
Marcos Jaimovich
The Silent Spectre Haunting Your Network: QPhishing, the CISO’s Unspoken Nightmare.
The Silent Spectre Haunting Your...
Marcos Jaimovich
Goodbye to Traditional: Why Conventional Cybersecurity Tools are No Longer Sufficient for the Future of Digital Threats ?
Goodbye to Traditional: Why Conventional...
Marcos Jaimovich
Why do we compare a SOC (Security Operations Center) with the cockpit of a commercial airplane? by Marcos Jaimovich
Why do we compare a...
Joas Antonio
Security Operations Center (SOC) – Tools for Operations Development by Joas Antonio
Security Operations Center (SOC) –...
IZZMIER
Incident Response Playbooks & Workflows Ready for use in your SOC & Redteams
Incident Response Playbooks & Workflows...
LOGPOINT
396 Use Cases & Siem Rules Code ready for use for Mitre Attacks Events Detection in Your SOC by Logpoint
396 Use Cases & Siem...

LASTEST PUBLISHED POSTS

NSA
NSA Network Infrastructure Security Guide
NSA Network Infrastructure Security Guide
NIST
NIST Policy Template Guide
NIST Policy Template Guide
Hacker Combat
How are Passwords Cracked ? by Hacker Combat.
How are Passwords Cracked ?...
N/A
Security Metrics & KPIs for Measuring SOC Success – Measure Up: How SOC Metrics Elevate Your Security Posture.
Security Metrics & KPIs for...
Sectrio
The Global OT & IoT Threat Landscape Assessment and Analysis rEPORT 2024 by Sectrio Threat Research Lab Initiative.
The Global OT & IoT...
ISA SECURE
The Case for ISA/IEC 62443Security Level 2 as a Minimumfor COTS Components
The Case for ISA/IEC 62443Security...
Huntress
2024 Cyber Threat Report
2024 Cyber Threat Report
NACD - Intenet Security Alliance
2023 Director’s Handbook on Cyber-risk Oversight
2023 Director’s Handbook on Cyber-risk...
Devoteam
14 Cybersecurity Trends for 2024
14 Cybersecurity Trends for 2024
IGNITE Technologies
MEMORY FORENSICS VOLATILITY
MEMORY FORENSICS VOLATILITY
CAREER UP
7 Steps to your SOC Analyst Career
7 Steps to your SOC...
National Cyber Security Centrum
Managing Insider Threats
Managing Insider Threats

More Latest Published Posts

EC-MSP
BUSINESS CONTINUITY PLAN & DISASTER RECOVERY PLAN TEMPLATE
BUSINESS CONTINUITY PLAN & DISASTER RECOVERY PLAN TEMPLATE
PWC
Building a risk-resilient organisation
Building a risk-resilient organisation
Accenture
THE NEXT-GENERATION Building a Digital Central Bankfor a Digital Age
THE NEXT-GENERATION Building a Digital Central Bankfor a Digital Age
Thecyphere
Microsoft EntraID (Azure)ConditionalAccess
Microsoft EntraID (Azure)ConditionalAccess
aws
AWS Security Incident Response Guide
AWS Security Incident Response Guide
Government of South Australian
South Australian Cyber Security Framework
South Australian Cyber Security Framework
NAO -National Audit Office
Audit and Risk Assurance Committee Effectiveness Tool
Audit and Risk Assurance Committee Effectiveness Tool
WWW. D E V S E COP S G U I D E S . CO M
Attacking Docker
Attacking Docker
W W W . D E V S E C O P S G U I D E S . C O M
Attacking AWS – Offensive Security Aproach
Attacking AWS – Offensive Security Aproach
ENISA
Artificial Intelligence and Cybersecurity Research 2023
Artificial Intelligence and Cybersecurity Research 2023
MuleSoft
API Security Best Practices – Protect your APIs with Anypoint Platform
API Security Best Practices – Protect your APIs with Anypoint Platform
Green Circle
All about Security Operations Center
All about Security Operations Center
DAZZ
A Guide to Building a Secure SDLC – Which Scanning Tools Should I look at, and where do they go?
A Guide to Building a Secure SDLC – Which Scanning Tools Should I look at, and where do they go?
zimperium
2023 Mobile Banking Heists Report
2023 Mobile Banking Heists Report
40 under 40
40 under 40 in CyberSecurity 2024
40 under 40 in CyberSecurity 2024
HADESS
40 Days in DeepDark Web About Crypto Scam
40 Days in DeepDark Web About Crypto Scam
Everbridge
8 Principles of Supply Chain Risk Management
8 Principles of Supply Chain Risk Management
CHAOSSEARCH
Threat Hunter’s Handbook – Using Log Analytics to Find and Neutralize Hidden Threats in Your Environment
Threat Hunter’s Handbook – Using Log Analytics to Find and Neutralize Hidden Threats in Your Environment
ENDGAME
The Hunters Handbook Endgame’s Guide to Adversary Hunting
The Hunters Handbook Endgame’s Guide to Adversary Hunting
THE EU’S MOST THREATENING by EUROPOL
THE EU’S MOST THREATENING by EUROPOL
National Cyber Security Centre
Responding to a cyber incident – a guide for CEOs
Responding to a cyber incident – a guide for CEOs
IGNITE Technologies
CREDENTIAL DUMPING
CREDENTIAL DUMPING
HADESS
Pwning the Domain Lateral Movement
Pwning the Domain Lateral Movement
Jorgen Lanesskog
PING Basic IP Network Troubleshooting
PING Basic IP Network Troubleshooting
TELESOFT
Layer 7 Visibility What are the Benefits?
Layer 7 Visibility What are the Benefits?
TIGERA
Introduction to Kubernetes Networking and Security
Introduction to Kubernetes Networking and Security
Department of Defense's (DoD)
Defense Industrial Base Cybersecurity Strategy 2024
Defense Industrial Base Cybersecurity Strategy 2024
Dummies
Zero Trust Access for Dummies Fortinet
Zero Trust Access for Dummies Fortinet